We have recently launched a new website in the financial services industry. This site resides on a server that must comply to PCI rules and regulations. To generate content, I wanted to use a CMS such as WordPress but the network admins do not want WordPress on the server. So I'm wondering what the best course of action is:
1. Create a subdomain such as blog.mysite.com on a completely different server and host the blog there.
2. Scrap the blog and just create an articles or resources section, which could still reside on the same server as the application.